GNU GV Stack Buffer Overflow Vulnerability
BID:20978
Info
GNU GV Stack Buffer Overflow Vulnerability
| Bugtraq ID: | 20978 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2006-5864 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 09 2006 12:00AM |
| Updated: | Nov 15 2007 12:39AM |
| Credit: | Renaud Lifchitz is credited with the discovery of this vulnerability. |
| Vulnerable: |
Ubuntu Ubuntu Linux 5.10 sparc Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 SuSE SUSE Linux Enterprise Server 8 SuSE SUSE Linux Enterprise Server 10 SuSE Suse Linux Enterprise Desktop 10 SuSE Linux Enterprise Server 9 SuSE Linux Enterprise Server 10 S.u.S.E. UnitedLinux 1.0 S.u.S.E. SuSE Linux School Server for i386 S.u.S.E. SUSE LINUX Retail Solution 8.0 S.u.S.E. SuSE Linux Openexchange Server 4.0 S.u.S.E. Open-Enterprise-Server 9.0 S.u.S.E. Novell Linux Desktop 9 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Professional 9.2 x86_64 S.u.S.E. Linux Professional 9.2 S.u.S.E. Linux Professional 9.1 x86_64 S.u.S.E. Linux Professional 9.1 S.u.S.E. Linux Professional 9.0 x86_64 S.u.S.E. Linux Professional 9.0 S.u.S.E. Linux Professional 8.2 S.u.S.E. Linux Professional 10.1 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Personal 9.2 x86_64 S.u.S.E. Linux Personal 9.2 S.u.S.E. Linux Personal 9.1 x86_64 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Personal 9.0 x86_64 S.u.S.E. Linux Personal 9.0 S.u.S.E. Linux Personal 8.2 S.u.S.E. Linux Personal 10.1 rPath rPath Linux 1 Mandriva Linux Mandrake 2006.0 x86_64 Mandriva Linux Mandrake 2006.0 Mandriva Linux Mandrake 2007.0 x86_64 Mandriva Linux Mandrake 2007.0 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 4.0 GNU gv 3.6.2 GNU gv 3.6.1 GNU gv 3.6 GNU gv 3.5.8 GNOME Evince 0.6.1 GNOME Evince 0.5.2 GNOME Evince 0.4 GNOME Evince 0.1.5 Gentoo Linux Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 |
| Not Vulnerable: | |
Discussion
GNU GV Stack Buffer Overflow Vulnerability
GNU gv is prone to a stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer.
Exploiting this issue allows attackers to execute arbitrary machine code in the context of users running the affected application. Failed attempts will likely crash the application, resulting in denial-of-service conditions.
Version 3.6.2 is reported vulnerable; other versions may also be affected.
NOTE: Various other applications may employ embedded GNU gv code and could also be vulnerable as a result.
GNU gv is prone to a stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer.
Exploiting this issue allows attackers to execute arbitrary machine code in the context of users running the affected application. Failed attempts will likely crash the application, resulting in denial-of-service conditions.
Version 3.6.2 is reported vulnerable; other versions may also be affected.
NOTE: Various other applications may employ embedded GNU gv code and could also be vulnerable as a result.
Exploit / POC
GNU GV Stack Buffer Overflow Vulnerability
To exploit this issue, an attacker must entice a victim to download and view a malicious file using the affected application.
UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following proof-of-concept exploits are available:
To exploit this issue, an attacker must entice a victim to download and view a malicious file using the affected application.
UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following proof-of-concept exploits are available:
Solution / Fix
GNU GV Stack Buffer Overflow Vulnerability
Solution:
Please see the referenced advisories for more information.
Mandriva Linux Mandrake 2007.0
Mandriva Linux Mandrake 2007.0 x86_64
GNOME Evince 0.1.5
GNOME Evince 0.4
GNOME Evince 0.5.2
GNOME Evince 0.6.1
Debian Linux 3.1
GNU gv 3.5.8
GNU gv 3.6.1
Solution:
Please see the referenced advisories for more information.
Mandriva Linux Mandrake 2007.0
-
Mandriva evince-0.6.0-1.2mdv2007.0.i586.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download -
Mandriva evince-0.6.0-1.2mdv2007.0.src.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download
Mandriva Linux Mandrake 2007.0 x86_64
-
Mandriva evince-0.6.0-1.2mdv2007.0.src.rpm
Mandriva Linux 2007.0/X86_64:
http://www.mandriva.com/en/download -
Mandriva evince-0.6.0-1.2mdv2007.0.x86_64.rpm
Mandriva Linux 2007.0/X86_64:
http://www.mandriva.com/en/download
GNOME Evince 0.1.5
-
Debian evince_0.1.5-2sarge1_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_alpha.deb -
Debian evince_0.1.5-2sarge1_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_amd64.deb -
Debian evince_0.1.5-2sarge1_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_arm.deb -
Debian evince_0.1.5-2sarge1_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_hppa.deb -
Debian evince_0.1.5-2sarge1_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_i386.deb -
Debian evince_0.1.5-2sarge1_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_ia64.deb -
Debian evince_0.1.5-2sarge1_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_m68k.deb -
Debian evince_0.1.5-2sarge1_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_mips.deb -
Debian evince_0.1.5-2sarge1_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_mipsel.deb -
Debian evince_0.1.5-2sarge1_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_powerpc.deb -
Debian evince_0.1.5-2sarge1_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_s390.deb -
Debian evince_0.1.5-2sarge1_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_sparc.deb
GNOME Evince 0.4
-
Ubuntu evince_0.4.0-0ubuntu4.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.2_amd64.deb -
Ubuntu evince_0.4.0-0ubuntu4.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.2_i386.deb -
Ubuntu evince_0.4.0-0ubuntu4.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.2_powerpc.deb -
Ubuntu evince_0.4.0-0ubuntu4.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.2_sparc.deb -
Ubuntu evince_0.4.0-0ubuntu4.3_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.3_amd64.deb -
Ubuntu evince_0.4.0-0ubuntu4.3_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.3_i386.deb -
Ubuntu evince_0.4.0-0ubuntu4.3_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.3_powerpc.deb -
Ubuntu evince_0.4.0-0ubuntu4.3_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubu ntu4.3_sparc.deb
GNOME Evince 0.5.2
-
Ubuntu evince-gtk/evince-gtk_0.5.2-0ubuntu2.1_sparc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu2.1_sparc.deb -
Ubuntu evince-gtk_0.5.2-0ubuntu2.1_amd64.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu2.1_amd64.deb -
Ubuntu evince-gtk_0.5.2-0ubuntu2.1_i386.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu2.1_i386.deb -
Ubuntu evince-gtk_0.5.2-0ubuntu2.1_powerpc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu2.1_powerpc.deb -
Ubuntu evince-gtk_0.5.2-0ubuntu4.1_amd64.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu4.1_amd64.deb -
Ubuntu evince-gtk_0.5.2-0ubuntu4.1_i386.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu4.1_i386.deb -
Ubuntu evince-gtk_0.5.2-0ubuntu4.1_powerpc.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu4.1_powerpc.deb -
Ubuntu evince-gtk_0.5.2-0ubuntu4.1_sparc.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0. 5.2-0ubuntu4.1_sparc.deb -
Ubuntu evince_0.5.2-0ubuntu3.1_amd64.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.1_amd64.deb -
Ubuntu evince_0.5.2-0ubuntu3.1_i386.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.1_i386.deb -
Ubuntu evince_0.5.2-0ubuntu3.1_powerpc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.1_powerpc.deb -
Ubuntu evince_0.5.2-0ubuntu3.1_sparc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.1_sparc.deb -
Ubuntu evince_0.5.2-0ubuntu3.2_amd64.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.2_amd64.deb -
Ubuntu evince_0.5.2-0ubuntu3.2_i386.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.2_i386.deb -
Ubuntu evince_0.5.2-0ubuntu3.2_powerpc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.2_powerpc.deb -
Ubuntu evince_0.5.2-0ubuntu3.2_sparc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubu ntu3.2_sparc.deb
GNOME Evince 0.6.1
-
Ubuntu evince_0.6.1-0ubuntu1.1_amd64.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.1_amd64.deb -
Ubuntu evince_0.6.1-0ubuntu1.1_i386.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.1_i386.deb -
Ubuntu evince_0.6.1-0ubuntu1.1_powerpc.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.1_powerpc.deb -
Ubuntu evince_0.6.1-0ubuntu1.1_sparc.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.1_sparc.deb -
Ubuntu evince_0.6.1-0ubuntu1.2_amd64.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.2_amd64.deb -
Ubuntu evince_0.6.1-0ubuntu1.2_i386.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.2_i386.deb -
Ubuntu evince_0.6.1-0ubuntu1.2_powerpc.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.2_powerpc.deb -
Ubuntu evince_0.6.1-0ubuntu1.2_sparc.deb
Ubuntu 6.10:
http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubu ntu1.2_sparc.deb
Debian Linux 3.1
-
Debian evince_0.1.5-2sarge1_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_alpha.deb -
Debian evince_0.1.5-2sarge1_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_amd64.deb -
Debian evince_0.1.5-2sarge1_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_arm.deb -
Debian evince_0.1.5-2sarge1_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_hppa.deb -
Debian evince_0.1.5-2sarge1_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_i386.deb -
Debian evince_0.1.5-2sarge1_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_ia64.deb -
Debian evince_0.1.5-2sarge1_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_m68k.deb -
Debian evince_0.1.5-2sarge1_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_mips.deb -
Debian evince_0.1.5-2sarge1_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_mipsel.deb -
Debian evince_0.1.5-2sarge1_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_powerpc.deb -
Debian evince_0.1.5-2sarge1_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_s390.deb -
Debian evince_0.1.5-2sarge1_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sa rge1_sparc.deb
GNU gv 3.5.8
-
Mandriva gv-3.5.8-31.1.C30mdk.i586.rpm
Corporate 3.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.5.8-31.1.C30mdk.src.rpm
Corporate 3.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.5.8-31.1.C30mdk.x86_64.rpm
Corporate 3.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.5.8-31.2.C30mdk.i586.rpm
Corporate 3.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.5.8-31.2.C30mdk.x86_64.rpm
Corporate 3.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.2.20060mlcs4.src.rpm
Corporate 3.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.3.20060mlcs4.i586.rpm
Corporate 4.0:
http://www.mandriva.com/en/download
GNU gv 3.6.1
-
Debian gv_3.6.1-10sarge1_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_al pha.deb -
Debian gv_3.6.1-10sarge1_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_am d64.deb -
Debian gv_3.6.1-10sarge1_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_ar m.deb -
Debian gv_3.6.1-10sarge1_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_hp pa.deb -
Debian gv_3.6.1-10sarge1_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_i3 86.deb -
Debian gv_3.6.1-10sarge1_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_ia 64.deb -
Debian gv_3.6.1-10sarge1_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_m6 8k.deb -
Debian gv_3.6.1-10sarge1_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_mi ps.deb -
Debian gv_3.6.1-10sarge1_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_mi psel.deb -
Debian gv_3.6.1-10sarge1_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_po werpc.deb -
Debian gv_3.6.1-10sarge1_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_s3 90.deb -
Debian gv_3.6.1-10sarge1_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge1_sp arc.deb -
Debian gv_3.6.1-10sarge2_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_al pha.deb -
Debian gv_3.6.1-10sarge2_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_am d64.deb -
Debian gv_3.6.1-10sarge2_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_ar m.deb -
Debian gv_3.6.1-10sarge2_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_hp pa.deb -
Debian gv_3.6.1-10sarge2_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_i3 86.deb -
Debian gv_3.6.1-10sarge2_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_ia 64.deb -
Debian gv_3.6.1-10sarge2_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_m6 8k.deb -
Debian gv_3.6.1-10sarge2_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_mi ps.deb -
Debian gv_3.6.1-10sarge2_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_mi psel.deb -
Debian gv_3.6.1-10sarge2_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_po werpc.deb -
Debian gv_3.6.1-10sarge2_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_s3 90.deb -
Debian gv_3.6.1-10sarge2_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_sp arc.deb -
Mandriva gv-3.6.1-4.2.20060mdk.i586.rpm
Mandriva Linux 2006
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.2.20060mdk.src.rpm
Mandriva Linux 2006
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.2.20060mdk.x86_64.rpm
Mandriva Linux 2006
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.2.20060mlcs4.i586.rpm
Corporate 4.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.2.20060mlcs4.src.rpm
Corporate 4.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0/X86_64:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.3.20060mlcs4.i586.rpm
Corporate 4.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-4.3.20060mlcs4.x86_64.rpm
Corporate 4.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-7.1mdv2007.0.i586.rpm
Mandriva Linux 2006
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-7.1mdv2007.0.src.rpm
Mandriva Linux 2006
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-7.1mdv2007.0.x86_64.rpm
Mandriva Linux 2006
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-7.2mdv2007.0.i586.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download -
Mandriva gv-3.6.1-7.2mdv2007.0.x86_64.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download
References
GNU GV Stack Buffer Overflow Vulnerability
References:
References:
- Evince Home Page (GNOME)
- GNU gv Homepage (GNU)
- evince buffer overflow exploit (gv) (kspecial
) - GNU gv Stack Overflow Vulnerability (Renaud Lifchitz)
- Re: GNU gv Stack Overflow Vulnerability (Noam Rathaus
)